Connect public, paid and private patent data with Google Patents Public Datasets

Application level gateway and firewall rule set download validation

Info

Publication number
WO2004008271A3
WO2004008271A3 PCT/US2003/021058 US0321058W WO2004008271A3 WO 2004008271 A3 WO2004008271 A3 WO 2004008271A3 US 0321058 W US0321058 W US 0321058W WO 2004008271 A3 WO2004008271 A3 WO 2004008271A3
Authority
WO
Grant status
Application
Patent type
Prior art keywords
alg
device
level
bi
gateway
Prior art date
Application number
PCT/US2003/021058
Other languages
French (fr)
Other versions
WO2004008271A2 (en )
Inventor
John Alan Gervais
Mark Ryan Mayernick
Rex Irvin Beard
Original Assignee
Thomson Licensing Sa
John Alan Gervais
Mark Ryan Mayernick
Rex Irvin Beard
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance or administration or management of packet switching networks
    • H04L41/28Security in network management, e.g. restricting network management access
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. local area networks [LAN], wide area networks [WAN]
    • H04L12/2801Broadband local area networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0263Rule management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network-specific arrangements or communication protocols supporting networked applications
    • H04L67/34Network-specific arrangements or communication protocols supporting networked applications involving the movement of software or configuration parameters
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance or administration or management of packet switching networks
    • H04L41/08Configuration management of network or network elements
    • H04L41/0866Checking configuration
    • H04L41/0869Checking configuration by validating configuration within one network element
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Application independent communication protocol aspects or techniques in packet data networks
    • H04L69/30Definitions, standards or architectural aspects of layered protocol stacks
    • H04L69/32High level architectural aspects of 7-layer open systems interconnection [OSI] type protocol stacks
    • H04L69/322Aspects of intra-layer communication protocols among peer entities or protocol data unit [PDU] definitions
    • H04L69/329Aspects of intra-layer communication protocols among peer entities or protocol data unit [PDU] definitions in the application layer, i.e. layer seven

Abstract

Method (300) and apparatus (100) for validating application level gateway (ALG) files or firewall rulsets (200). The method and apparatus include receiving (304), at a bi-directional communications device (130), an application level gateway (ALG) file (200), and comparing (308, 310, 314, 320, 326, 332, 336) at least one compatibility parameter of said ALG file with features of said bi-directional communications device. In an instance where all of the compatibility parameters compare favorably, the ALG file is stored (340) at the bi-directional communications device.
PCT/US2003/021058 2002-07-11 2003-07-03 Application level gateway and firewall rule set download validation WO2004008271A3 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
US39504202 true 2002-07-11 2002-07-11
US60/395,042 2002-07-11

Applications Claiming Priority (5)

Application Number Priority Date Filing Date Title
DE2003632735 DE60332735D1 (en) 2002-07-11 2003-07-03 Verification of downloading a standard rate for a transitional device and fire protection wall on application-level
EP20030764351 EP1522159B1 (en) 2002-07-11 2003-07-03 Application level gateway and firewall rule set download validation
CN 03816516 CN1679263B (en) 2002-07-11 2003-07-03 Application level gateway and firewall rule set download validation
US10520854 US20050220126A1 (en) 2002-07-11 2003-07-03 Application level gateway and firewall rule set download validation
JP2004521529A JP2005532640A (en) 2002-07-11 2003-07-03 Allow download of the rule set of application-level gateway and firewall

Publications (2)

Publication Number Publication Date
WO2004008271A2 true WO2004008271A2 (en) 2004-01-22
WO2004008271A3 true true WO2004008271A3 (en) 2004-03-11

Family

ID=30115804

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2003/021058 WO2004008271A3 (en) 2002-07-11 2003-07-03 Application level gateway and firewall rule set download validation

Country Status (7)

Country Link
US (1) US20050220126A1 (en)
JP (2) JP2005532640A (en)
KR (1) KR100959968B1 (en)
CN (1) CN1679263B (en)
DE (1) DE60332735D1 (en)
EP (1) EP1522159B1 (en)
WO (1) WO2004008271A3 (en)

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7688828B2 (en) * 2001-06-27 2010-03-30 Cisco Technology, Inc. Downstream remote physical interface for modular cable modem termination system
US8677434B2 (en) * 2003-12-03 2014-03-18 Broadcom Corporation Method and system for direct digital up-conversion in a cable modem
US8108679B2 (en) 2004-05-20 2012-01-31 Qinetiq Limited Firewall system
US7817553B2 (en) * 2004-05-25 2010-10-19 Cisco Technology, Inc. Local area network services in a cable modem network
US7720101B2 (en) * 2004-05-25 2010-05-18 Cisco Technology, Inc. Wideband cable modem with narrowband circuitry
US8102854B2 (en) * 2004-05-25 2012-01-24 Cisco Technology, Inc. Neighbor discovery proxy with distributed packet inspection scheme
US8149833B2 (en) * 2004-05-25 2012-04-03 Cisco Technology, Inc. Wideband cable downstream protocol
US7864686B2 (en) 2004-05-25 2011-01-04 Cisco Technology, Inc. Tunneling scheme for transporting information over a cable network
US7835274B2 (en) * 2004-05-25 2010-11-16 Cisco Technology, Inc. Wideband provisioning
US7646786B2 (en) 2004-05-25 2010-01-12 Cisco Technology, Inc. Neighbor discovery in cable networks
US7539208B2 (en) 2004-05-25 2009-05-26 Cisco Technology, Inc. Timing system for modular cable modem termination system
US7532627B2 (en) * 2004-05-25 2009-05-12 Cisco Technology, Inc. Wideband upstream protocol
US20070061445A1 (en) * 2005-09-13 2007-03-15 Deganaro Louis R Cooperative routing between traffic control device and multi-server application
US8848745B2 (en) * 2006-08-17 2014-09-30 Broadcom Corporation Remote flash access
WO2008133824A1 (en) * 2007-04-23 2008-11-06 Thomson Licensing Method and apparatus for software downloads in a network
US8601097B2 (en) * 2010-02-22 2013-12-03 Ncomputing Inc. Method and system for data communications in cloud computing architecture
US20120117365A1 (en) * 2010-11-08 2012-05-10 Delta Electronics (Thailand) Public Co., Ltd. Firmware update method and system for micro-controller unit in power supply unit
US9141169B2 (en) 2012-01-20 2015-09-22 Cisco Technology, Inc. System and method to conserve power in an access network without loss of service quality
US9843560B2 (en) 2015-09-11 2017-12-12 International Business Machines Corporation Automatically validating enterprise firewall rules and provisioning firewall rules in computer systems

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5599231A (en) * 1994-10-31 1997-02-04 Nintendo Co., Ltd. Security systems and methods for a videographics and authentication game/program fabricating device
US5845128A (en) * 1996-02-20 1998-12-01 Oracle Corporation Automatically preserving application customizations during installation of a new software release
US5991774A (en) * 1997-12-22 1999-11-23 Schneider Automation Inc. Method for identifying the validity of an executable file description by appending the checksum and the version ID of the file to an end thereof
US6009547A (en) * 1997-12-03 1999-12-28 International Business Machines Corporation ECC in memory arrays having subsequent insertion of content
US6029196A (en) * 1997-06-18 2000-02-22 Netscape Communications Corporation Automatic client configuration system
US6105149A (en) * 1998-03-30 2000-08-15 General Electric Company System and method for diagnosing and validating a machine using waveform data

Family Cites Families (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6006018A (en) * 1995-10-03 1999-12-21 International Business Machines Corporation Distributed file system translator with extended attribute support
US5848064A (en) * 1996-08-07 1998-12-08 Telxon Corporation Wireless software upgrades with version control
US5964831A (en) * 1996-10-29 1999-10-12 Electronic Data Systems Corporation Distributed on-line data communications system and method
US6272150B1 (en) * 1997-01-17 2001-08-07 Scientific-Atlanta, Inc. Cable modem map display for network management of a cable data delivery system
US6308328B1 (en) * 1997-01-17 2001-10-23 Scientific-Atlanta, Inc. Usage statistics collection for a cable data delivery system
US5968176A (en) * 1997-05-29 1999-10-19 3Com Corporation Multilayer firewall system
US6182275B1 (en) * 1998-01-26 2001-01-30 Dell Usa, L.P. Generation of a compatible order for a computer system
US6356951B1 (en) * 1999-03-01 2002-03-12 Sun Microsystems, Inc. System for parsing a packet for conformity with a predetermined protocol using mask and comparison values included in a parsing instruction
US6842906B1 (en) * 1999-08-31 2005-01-11 Accenture Llp System and method for a refreshable proxy pool in a communication services patterns environment
US7318089B1 (en) * 1999-09-30 2008-01-08 Intel Corporation Method and apparatus for performing network-based control functions on an alert-enabled managed client
CN1197000C (en) * 1999-10-15 2005-04-13 汤姆森特许公司 User interface for bi-directional communication system
JP2001216218A (en) * 2000-02-01 2001-08-10 Canon Inc Printing controller, printing system, adapter, printing control method and storage medium
US7031263B1 (en) * 2000-02-08 2006-04-18 Cisco Technology, Inc. Method and apparatus for network management system
US6665752B1 (en) * 2000-02-17 2003-12-16 Conexant Systems, Inc. Interrupt driven interface coupling a programmable media access controller and a process controller
EP1292892A4 (en) * 2000-04-14 2006-11-15 Goahead Software Inc A system and method for upgrading networked devices
US20020010800A1 (en) * 2000-05-18 2002-01-24 Riley Richard T. Network access control system and method
JP2002024026A (en) * 2000-07-04 2002-01-25 Canon Inc Device, system and method for information processing and storage medium
US20020133586A1 (en) * 2001-01-16 2002-09-19 Carter Shanklin Method and device for monitoring data traffic and preventing unauthorized access to a network
CN101567889B (en) * 2001-04-13 2014-01-08 诺基亚公司 System and method for providing protection for networks
US6957212B2 (en) * 2001-04-24 2005-10-18 Innopath Software, Inc. Apparatus and methods for intelligently caching applications and data on a gateway
US20030033418A1 (en) * 2001-07-19 2003-02-13 Young Bruce Fitzgerald Method of implementing and configuring an MGCP application layer gateway
US7370353B2 (en) * 2001-11-05 2008-05-06 Cisco Technology, Inc. System and method for managing dynamic network sessions
US6996211B2 (en) * 2002-12-23 2006-02-07 Sbc Properties, L.P. Voice over IP method of determining caller identification

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5599231A (en) * 1994-10-31 1997-02-04 Nintendo Co., Ltd. Security systems and methods for a videographics and authentication game/program fabricating device
US5845128A (en) * 1996-02-20 1998-12-01 Oracle Corporation Automatically preserving application customizations during installation of a new software release
US6029196A (en) * 1997-06-18 2000-02-22 Netscape Communications Corporation Automatic client configuration system
US6009547A (en) * 1997-12-03 1999-12-28 International Business Machines Corporation ECC in memory arrays having subsequent insertion of content
US5991774A (en) * 1997-12-22 1999-11-23 Schneider Automation Inc. Method for identifying the validity of an executable file description by appending the checksum and the version ID of the file to an end thereof
US6105149A (en) * 1998-03-30 2000-08-15 General Electric Company System and method for diagnosing and validating a machine using waveform data

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP1522159A2 *

Also Published As

Publication number Publication date Type
DE60332735D1 (en) 2010-07-08 grant
CN1679263A (en) 2005-10-05 application
KR20050019836A (en) 2005-03-03 application
KR100959968B1 (en) 2010-05-27 grant
CN1679263B (en) 2012-04-18 grant
JP2005532640A (en) 2005-10-27 application
JP2010061675A (en) 2010-03-18 application
EP1522159A4 (en) 2005-10-12 application
EP1522159A2 (en) 2005-04-13 application
WO2004008271A2 (en) 2004-01-22 application
EP1522159B1 (en) 2010-05-26 grant
US20050220126A1 (en) 2005-10-06 application

Similar Documents

Publication Publication Date Title
EP1361527A1 (en) Method for loading an application in a device, device and smart card therefor
US20020087960A1 (en) Upgrading peripheral devices
US20050234825A1 (en) Method for loading an application in a device, device and smart card therefor
EP0782090A3 (en) Method and apparatus for parametric signature verification
WO2003058411A1 (en) Content delivery method and content delivery system
WO2000054124A3 (en) Automated downloading computer jukebox
WO2003001421A1 (en) Electronic report making supporting apparatus, method, and program
DE10345304A1 (en) Method for controlling vehicle lighting with AFS-control device, requires bringing vehicle lighting into axi-parallel reference direction for given time
WO2002037316A3 (en) Method and apparatus for creating a unique audio signature
WO2008032493A1 (en) Terminal apparatus, device, unauthorized use preventing system, unauthorized use preventing method, and program
EP0924629A3 (en) Virtual navigation
WO2005013138A1 (en) Authentication method, authentication device, and computer-readable storage medium
WO2001006374A3 (en) System and method for securing an untrusted storage
WO2005055694A3 (en) Pump control system and method
WO2004071142A1 (en) Shield member for concealing specified member from outside and electronic apparatus comprising shield member
WO2005070733A1 (en) Security system, authentication system for vehicle, method and program
WO2000007081A1 (en) Ladder circuit editing device
DE20202761U1 (en) Inserter insertion and arrangement for supporting objects with an insertion device and an insertion
WO2003019459A3 (en) Method and apparatus for article authentication
WO2004049193A1 (en) Device, program, and method for supporting electronic mail creation
WO2006051899A1 (en) Data processing system and method, and data processing device
CA2476919A1 (en) Automated key management system and method
KR100451189B1 (en) Automatic setting method for terminal information using subscriber identity module
EP1566068B1 (en) Loading of an application that is to be deployed in a terminal and a chip card
DE20107416U1 (en) Collection device for flush-mounted devices-u. / O. Connector boxes and introduction of the flush device u. / O. Connector doses into appropriate openings in the operational area of ​​electrical installation technology

Legal Events

Date Code Title Description
AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2003764351

Country of ref document: EP

Ref document number: PA/a/2005/000416

Country of ref document: MX

Ref document number: 2004521529

Country of ref document: JP

WWE Wipo information: entry into national phase

Ref document number: 20038165163

Country of ref document: CN

Ref document number: 10520854

Country of ref document: US

Ref document number: 1020057000532

Country of ref document: KR

WWP Wipo information: published in national office

Ref document number: 1020057000532

Country of ref document: KR

WWP Wipo information: published in national office

Ref document number: 2003764351

Country of ref document: EP